Most Recents
Things to Consider When Outsourcing Your Mobile App Development Project
Beware of These 7 Popular Cyber Security Threats
Find a Top Mobile App Development Company That Fits Your Needs
Importance of Developing a Website for Your Business
App Store Review Guidelines: 5 Mistakes to Avoid for Successful iOS App Submission
Android App Development Libraries You May Find Trending in 2023
Creating A Money Making App Gets Easy… Know How
Want to Make Your Game App Successful? Here is the Success Mantra For You…
How Monetization Trends are Revolutionizing Mobile Game Apps
Ensure a Successful Business with These Potential Travel App Ideas
Know How Cyber Security and Physical Security Are Similar
What do the Statistics say about Mobile App Development Growth in 2023
Benefits of Promoting Your Business Using Mobile Games
Find the Popular Frameworks in the Market Used for Mobile App Development
Metaverse and Its Five Essential Features
Watch Out For the Ruling Trends in Mobile Game App Development
Essential Tips to Help You Create Successful Game Apps
Fintech vs Techfin: Where Does the Future of Banking Lies?
Vulnerability Management Process: The Crucial Way to Maintain Your Cyber Security Posture
Why React Native Framework is the Right Choice for Hybrid App Development
Why Do You Need Financial Software Development Service for Your Business
Importance of Fintech Solutions in This Digital Age
Learn Why it Important To Integrate Content Marketing & SEO
How Mobile Apps Are Making A Difference in Real Estate Industry
10 Useful Tips to Create Highly Engaging Social Media Content
Building A Website Gets Easy Without Coding
Five Main Stages of Game Development
Top SEO Trends You Must Follow in 2022
Things to Learn for High-End App Development in 2022
The Right Strategy to Make Your Mobile App Equipped with Sound Social Networking Tools
6 Common Mistakes in Ecommerce Website Development To Avoid
The Year 2021 and The Challenges In Cybersecurity Industry
Top Benefits of Having an Impactful UI/ UX Design For Your App
Useful SEO Tips For Small Businesses Website Optimization
Know The Different Channels Important To Build Your Online Reputation
Structured Data: An Important Tool in SEO to Mark Strong Online Presence
Learn the Different Strategies to Use for B2B Lead Generation in Digital Marketing
Things to Consider Before Launching Your App in Google Play Store
Google’s Page Experience Update Now Fully Rolled Out- Here’s What You Can Expect
7 Useful Tips to Ensure the Best Android App Development
Learn Professional Web Development Tips to Build an Efficient Website
Learn the Effective Ways to Manage Your Online Reputation
Three Principles Every User Experience Designers Should Follow
Top 5 Benefits of Integrating Cyber Security Services with Your Business
Google’s New Safeguards for Minors to Create Safer Space on the Internet
Benefits of Android Game Development You Must Not Ignore
Google Removes Safe Browsing and Ad Experience Widgets from Page Experience Ranking Signal Criteria
Google Changes Eligibility for Fact Check Rich Results
Why You Need To Hire an Online Reputation Management Company for Your Business
Complete Guide on 2d and 3d Game Development
MITRE Engenuity releases first ATT&CK evaluations for Industrial Control Systems Security Tools
WordPress SEO: 3 Quick and Easy Hacks for PageSpeed & Core Web Vitals
Researchers Reveal New Trick of Hackers to Disable Macro Security Warnings in Malicious Office Files
Top PHP Development Tools Leading Website Development Company Uses
Cloud Security Analysis Solutions: The Next Step to Make Your Data Secure
Learn How to Optimize Your Site for Google’s Page Experience Update
Amid Rising Cybersecurity Threat Indian Military Personnel to Get Trained in the US on Cyber Warfare
How the Network Change in Pandemic Steered to Must Cybersecurity
7 Reason You Should Get Mobile App for Your Business
Google Rolls Out New Spam Algorithm Update: What Changes You Can Expect
Top 10 Benefits of Unity Game Development
VPN Attacks: A Rising Threat for Remote Work in the COVID-19 Era
Google Releases New Framework to Prevent Software Supply Chain Attacks
GitHub Discloses Details of Easy-to-Exploit Linux Vulnerability
Read Key Highlights of Google Ads API version 8.0
Here How the Gaming Giant EA was Hacked
Know How A Malvertising Campaign On Google Distributed Trojanized AnyDesk Installer
Learn How to Find the Best UI/UX Development Company
Trends of 2021 Every Top Cyber Security Company in India Follows
Improve your Conversion Rate with 10 Essential Elements of Good SEO
Google Announces New Features for App Advertisers to Improve ROI
FragAttacks: Set of New Vulnerabilities that Expose Nearly All Wi-Fi Devices to Attacks
Latest Technologies and Trends in Mobile Game App Development
Babuk – How a Newcomer soon becomes a Growing Ransomware Threat
5 Characteristics of the Best Digital Marketing Services Provider
Here are the Tips to Choose the Best Game App Development Company
7 Reasons to do Search Engine Optimization for your Website
Integrating AI with Cyber Security – Tomorrow of Cyber Security
How Much Does HIPAA Compliance Cost?
Best Android Game App Development Company Doesn’t Miss out Following Features
Effective Voice Search Statistics for 2020
Android 10: Everything You Need to Know
How to Make Massive Money with Mobile Apps In 2020
Drastic boost in mobile gaming during coronavirus lockdown
Cyber security – A Tool to Address Digital World’s Major Issues; Cyber Attack
5 facts to keep in mind before hiring Game app development Company in India.
Best iOS games app development
Tab 1
Researchers Reveal New Trick of Hackers to Disable Macro Security Warnings in Malicious Office Files

Hackers are getting way smarter these days and every time coming up with a new plot to carry out malicious acts. Why we saying this is because the latest revelation in the data security world has left the experts agape.
Typically, the norm for phishing campaigns involves distributing weaponized Microsoft Office documents that prompt victims to enable macros in order to activate the taint chain directly. But the latest discovery has indicated attackers using non-malicious documents to disable security warnings before executing macro code to infect target computers.
Malware authors have once again advanced their technique to evade detection. Researchers from McAfee Labs have come across a novel tactic that reportedly involves downloading and executing malicious DLLs (ZLoader) without any malicious code present in the initial spammed attachment macro.
McAfee says that the distribution of ZLoader infections using this mechanism has been primarily reported in the U.S., Canada, Spain, Japan, and Malaysia. The malware, a descendant of the infamous Zeus banking Trojan, is well known for aggressively using macro-enabled Office documents as an initial attack vector to steal credentials and personally identifiable information from users of targeted financial institutions.
While investigating the invasions, the researchers discovered that the infection chain started with a phishing email comprising a Microsoft Word document attachment. That attached document file when opened, downloaded a password-protected Microsoft Excel file from a remote server. However, here’s an important thing worth noting, macros need to be enabled in the Word document to trigger the download itself.
"After downloading the XLS file, the Word VBA reads the cell contents from XLS and creates a new macro for the same XLS file and writes the cell contents to XLS VBA macros as functions," the researchers from McAfee Labs said. "Once the macros are written and ready, the Word document sets the policy in the registry to 'Disable Excel Macro Warning' and invokes the malicious macro function from the Excel file. The Excel file now downloads the ZLoader payload. The ZLoader payload is then executed using rundll32.exe."
Due to the "significant security risk" posed by macros, the feature is usually disabled by default. But this countermeasure has had an unfortunate side-effect; prompting threat actors creating compelling social engineering lures to trick victims into enabling them. By turning off the security warning displayed to the target user, the attacks become prominent because of the steps it takes to impede detection and stay under the radar.
"Malicious documents have been an entry point for most malware families and these attacks have been evolving their infection techniques and obfuscation, not just limiting to direct downloads of payload from VBA, but creating agents dynamically to download payloads," the researchers. "Usage of such agents in the infection chain is not only limited to Word or Excel, but further threats may use other living off the land tools to download its payloads."
How We Can Help
Webmobril Technologies is a leading cybersecurity services provider in India that offer comprehensive solutions for data privacy and protection. We uncover the risks before others could discover them and bridge all the security gaps to make your crucial data and organization secure. Having a team of industry experts and using the latest tools and technologies, we provide overarching security with trusted compliance and risk program advice.